[原文]Argument injection vulnerability in the mail function for PHP 4.x to 4.2.2 may allow attackers to bypass safe mode restrictions and modify command line arguments to the MTA (e.g. sendmail) in the 5th argument to mail(), altering MTA behavior and possibly executing commands.

-
漏洞信息

-
漏洞描述

PHP 4.x to 4.2.2 contains a flaw that exist in the mail() function that does not properly sanitize user input. It is possible for a user may pass ASCII control characters to the mail() function that could alter the headers of email. This could result in spoofed mail headers.

-
时间线

公开日期:
2003-07-30

发现日期:
2002-08-23

利用日期:2003-07-30

解决日期:Unknow

-
解决方案

Upgrade to the latest version of PHP available, or disable the mail() function in the php.ini.